SOME INTERESTING THINGS IN ELECTRON(Essays)

2018-06-22

[+] Author:MagicBlue
[+] Team: NeSE security team
[+] From: https://magicbluech.github.io
[+] Create: 2018-06-22

Neglected Web Security thought

2017-12-02

take over your subdomain
- DNS hijacking using cloud providers

VelocityServlet Expression-language Injection

2017-11-15

[+] Author:MagicBlue
[+] Team: NeSE security team
[+] From: https://magicbluech.github.io
[+] Create: 2017-11-15

一个xss的利用(location.pathname situation)

2017-06-24

[+] Author:MagicBlue
[+] Team: NeSE security team
[+] From: https://magicbluech.github.io
[+] Create: 2017-06-24

百度v3登陆系统架构问题导致点我链接拿到你的bduss(巧用referer)

2017-02-13

[+] Author:MagicBlue
[+] Team: NeSE security team
[+] From: https://magicbluech.github.io
[+] Create: 2017-02-13

SOME攻击可导致点我链接蠕虫+关注

2017-02-06

[+] Author:MagicBlue
[+] Team: NeSE security team
[+] From: https://magicbluech.github.io
[+] Create: 2017-02-06